You may be familiar with Microsoft Active Directory as it is a mainstay in many business’s IT operations and is crucial to the security and functionality of your network. Active Directory was developed by Microsoft for their Windows Domain networks and was released back in 2000 along with Windows 2000. Active Directory has become an umbrella that contains their “directory-based identity-related services” and offers a range of capabilities.

For about 20 years now, Microsoft Active Directory has been the dominant directory service controlling user access to IT resources. IT administrators have probably all heard of someone complaining about lacking access to a desktop or server. But just a few years ago, that problem was much easier to solve than it is now. With changes in IT environments, managing Active Directory has gotten more challenging.

Since Active Directory is the foundation of all Windows networks, monitoring Active Directory needs to be part of any comprehensive security strategy. Up to version 3.5, EventSentry utilized Windows auditing and the security event log to provide reports on: User Account Changes, Group Changes and Computer Account Changes.

Our product development team has been focusing on correlation and threat intelligence features, with the goal of thwarting external breach attempts. This year, we built new capabilities, strengthened existing features, and enhanced the usability of the product.